diff --git a/README.md b/README.md index 14597e1..aa1cdea 100644 --- a/README.md +++ b/README.md @@ -105,6 +105,16 @@ Please take a look at the official It explains the three different options very well. You can pass the hashes from the documentation 1:1 to the three parameters. +### Beginning with Hyperglass + +This module provides Vagrant definitions that can be used to get started +with Hyperglass. The following will produce VM's for a Hyperglass server +and an agent. + +```bash +vagrant up +``` + ## Tests This module has several unit tests and linters configured. You can execute them diff --git a/Vagrantfile b/Vagrantfile new file mode 100644 index 0000000..3616801 --- /dev/null +++ b/Vagrantfile @@ -0,0 +1,53 @@ +# -*- mode: ruby -*- +# vi: set ft=ruby : +# +# Environment variables may be used to control the behavior of the Vagrant VM's +# defined in this file. This is intended as a special-purpose affordance and +# should not be necessary in normal situations. If there is a need to run +# multiple backend instances simultaneously, avoid the IP conflict by setting +# the ALTERNATE_IP environment variable: +# +# ALTERNATE_IP=192.168.52.9 vagrant up hyperglass-server +# +# NOTE: The agent VM instances assume the backend VM is accessible on the +# default IP address, therefore using an ALTERNATE_IP is not expected to behave +# well with agent instances. +if not Vagrant.has_plugin?('vagrant-vbguest') + abort <<-EOM + +vagrant plugin vagrant-vbguest >= 0.16.0 is required. +https://github.com/dotless-de/vagrant-vbguest +To install the plugin, please run, 'vagrant plugin install vagrant-vbguest'. + + EOM +end + +# Vagrantfile API/syntax version. Don't touch unless you know what you're doing! +VAGRANTFILE_API_VERSION = "2" + +Vagrant.configure(VAGRANTFILE_API_VERSION) do |config| + + config.vm.synced_folder ".", "/vagrant", type: "virtualbox" + + config.vm.provider :virtualbox do |vb| + vb.customize ["modifyvm", :id, "--memory", "1024"] + end + + config.vm.define "hyperglass-server", primary: true, autostart: true do |c| + c.vm.box = "centos/7" + c.vm.hostname = 'hyperglass-server.example.com' + c.vm.network :private_network, ip: ENV['ALTERNATE_IP'] || '192.168.73.10' + c.vm.network :forwarded_port, guest: 8001, host: 8001, auto_correct: true + c.vm.provision :shell, :path => "vagrant/provision_basic_el.sh" + c.vm.provision :shell, :inline => "puppet apply /vagrant/vagrant/server.pp" + end + + config.vm.define "el7-agent", primary: true, autostart: true do |c| + c.vm.box = "centos/7" + c.vm.hostname = 'el7-agent.example.com' + c.vm.network :private_network, ip: ENV['ALTERNATE_IP'] || '192.168.73.20' + c.vm.network :forwarded_port, guest: 8080, host: 8080, auto_correct: true + c.vm.provision :shell, :path => "vagrant/provision_basic_el.sh" + c.vm.provision :shell, :inline => "puppet apply /vagrant/vagrant/agent.pp" + end +end diff --git a/vagrant/agent.pp b/vagrant/agent.pp new file mode 100644 index 0000000..5410f43 --- /dev/null +++ b/vagrant/agent.pp @@ -0,0 +1,31 @@ +file { '/opt/hyperglass/hyperglass-agent/hyperglass-agent/agent_cert.pem': + ensure => 'file', + owner => 'hyperglass-agent', + group => 'hyperglass-agent', + before => Service['hyperglass-agent.service'], +} + +file { '/opt/hyperglass/hyperglass-agent/hyperglass-agent/agent_key.pem': + ensure => 'file', + owner => 'hyperglass-agent', + group => 'hyperglass-agent', + before => Service['hyperglass-agent.service'], +} + +package { 'bird2': + ensure => 'installed', + before => Service['hyperglass-agent.service'], + require => Yumrepo['epel'], +} + +class { 'hyperglass::agent': + data => { + 'debug' => true, + 'listen_address' => '0.0.0.0', + 'mode' => 'bird', + 'secret' => fqdn_rand_string(20), + 'ssl' => { + 'enable' => false, + }, + }, +} diff --git a/vagrant/provision_basic_el.sh b/vagrant/provision_basic_el.sh new file mode 100644 index 0000000..3c4bd9a --- /dev/null +++ b/vagrant/provision_basic_el.sh @@ -0,0 +1,43 @@ +#!/bin/bash + +# using this instead of "rpm -Uvh" to resolve dependencies +function rpm_install() { + package=$(echo $1 | awk -F "/" '{print $NF}') + wget --quiet $1 + yum install -y ./$package + rm -f $package +} + +release=$(awk -F \: '{print $5}' /etc/system-release-cpe) + +rpm --import http://download-ib01.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-${release} +rpm --import http://yum.puppetlabs.com/RPM-GPG-KEY-puppet +rpm --import http://vault.centos.org/RPM-GPG-KEY-CentOS-${release} + +yum install -y wget + +# install and configure puppet +rpm -qa | grep -q puppet +if [ $? -ne 0 ] +then + + rpm_install http://yum.puppetlabs.com/puppet5-release-el-${release}.noarch.rpm + yum -y install puppet-agent + ln -s /opt/puppetlabs/puppet/bin/puppet /usr/bin/puppet +fi + +# use local hyperglass module +puppet resource file /etc/puppetlabs/code/environments/production/modules/hyperglass ensure=link target=/vagrant + +# install module dependencies +puppet module install puppetlabs/stdlib --version ">= 6.4.0 < 7.0.0" +puppet module install camptocamp/systemd --version ">= 2.10.0 < 3.0.0" +puppet module install puppet/redis --version ">= 6.1.0 < 7.0.0" +puppet module install puppet/nginx --version ">= 2.0.0 < 3.0.0" +puppet module install puppet/nodejs --version ">= 8.0.0 < 9.0.0" +puppet module install puppet/python --version ">= 4.1.1 < 5.0.0" + +# Install selinux so redis works in vagrant. This is used in hyperglass-server.pp. +puppet module install puppet/selinux --version ">= 3.0.0 < 4.0.0" + +puppet resource host hyperglass-server.example.com ensure=present ip=192.168.73.10 host_aliases=hyperglass-server diff --git a/vagrant/server.pp b/vagrant/server.pp new file mode 100644 index 0000000..56b8c14 --- /dev/null +++ b/vagrant/server.pp @@ -0,0 +1,42 @@ +# If you enable selinux, redis will not be able to write to its data directory +# and will not properly start without the following. +selinux::permissive { 'redis_t': + ensure => 'present', + before => Class['redis::service'], +} + +class { 'hyperglass::server': + # Without this, hyperglass binds to localhost and port forwarding with + # vagrant will not work. + data => { + 'listen_address' => '0.0.0.0', + }, + devices => { + 'routers' => [ + { + 'name' => 'atl_router01', + 'address' => '10.0.0.2', + 'network' => { + 'name' => 'secondary', + 'display_name' => 'That Other Network', + }, + 'credential' => { + 'username' => 'user2', + 'password' => ' secret2', + }, + 'display_name' => 'Atlanta, GA', + 'port' => 22, + 'nos' => 'juniper', + 'vrfs' => [ + { + 'name' => 'default', + 'display_name' => 'Global', + 'ipv4' => { + 'source_address' => '192.0.2.2', + }, + }, + ], + }, + ], + }, +}